April 22, 2024 at 09:33AM Shadowy Russian hacktivist group linked to cyberattack on Texas water system. Attempts reported in three small towns. Local officials claim public was not in danger. Cybersecurity firm links attack to Russian group with potential military ties. FBI and Homeland Security involved. Other foreign cyberattacks on U.S. water facilities also mentioned. … Read more
April 18, 2024 at 03:02PM Summary: This joint Cybersecurity Advisory (CSA), released by the FBI, CISA, EC3, and NCSC-NL, highlights the Akira ransomware threat. The report details the ransomware’s impact, encryption methods, impact on different system architectures, and recommended mitigations for network defenders. The CSA also provides technical details using the MITRE ATT&CK framework. For … Read more
April 17, 2024 at 03:00PM Alexander Lefterov, also known as Alipako, Uptime, and Alipatime, has been charged by the U.S. Justice Department for operating a significant botnet that infected thousands of computers in the United States. The indictment revealed that he and his associates stole credentials, accessed financial accounts, and provided access to the botnet … Read more
April 16, 2024 at 02:27PM FBI arrested Edmond Chakhmakhchyan on federal charges for attempting to market and sell malware, providing unauthorized control over a victim’s device. Pleading not guilty, he’s due to stand trial on June 4. Chakhmakhchyan had struck a deal with the malware’s creator to advertise the Hive remote access Trojan (RAT) and … Read more
April 13, 2024 at 01:59PM A joint operation between Australian Federal Police and the FBI led to the arrest of two individuals behind the “Firebird” remote access trojan, later rebranded as “Hive.” An Australian man faces 12 charges for developing and distributing the RAT, while Edmond Chakhmakhchyan from California is accused of marketing the Hive … Read more
April 13, 2024 at 09:54AM The House approved a bill to reauthorize the U.S. government surveillance program by a bipartisan vote of 273-147. Speaker Johnson faced criticism from conservatives, with the bill being amended to extend the program for two years. The legislation faced opposition and will require an additional vote. The program is set … Read more
April 10, 2024 at 01:53PM The Medusa ransomware gang took credit for a cyberattack on Tarrant County Appraisal District, threatening to release 218GB of data unless a $100,000 ransom is paid within six days. Approximately 300 people’s personal information was compromised, prompting the district to secure the network and involve cybersecurity experts. The FBI has … Read more
April 6, 2024 at 08:36AM Next week, the House will consider a bill to reauthorize the Section 702 surveillance program for national security, despite concerns about privacy. The program allows the US to collect foreign communications without a warrant. Reauthorization faces political resistance due to concerns about privacy and FBI abuses, with proposed changes to … Read more
March 26, 2024 at 07:18AM CISA and the FBI advise organizations to review and eliminate SQL injection vulnerabilities in their commercial software, as such flaws pose a significant security risk. They urge technology manufacturers to conduct a formal code review and embrace secure-by-design principles in software development to prevent malicious exploitation and enhance cybersecurity. From … Read more
March 25, 2024 at 02:28PM CISA and FBI advised technology manufacturing executives to conduct formal software reviews and implement mitigations to eliminate SQL injection (SQLi) vulnerabilities. SQL injection attacks enable unauthorized access to sensitive data and can lead to data breaches and system takeover. They recommend using parameterized queries with prepared statements as a secure … Read more